Skip to content

Release 0.8.0 #109

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
rayluo merged 17 commits into from
Oct 19, 2019
Merged

Release 0.8.0 #109

Changes from 1 commit
Commits
Show all changes
17 commits
Select commit Hold shift + click to select a range
91e90e6
The more generic common can now support DF for MSA
rayluo Sep 4, 2019
97d29b1
Merge pull request #101 from AzureAD/release-0.7.0
rayluo Sep 25, 2019
4550793
[SSH] SSH support including ATs bound to keys (#102)
bgavrilMS Sep 27, 2019
e613b25
Refactor: instance_discovery() emits actionable msg
rayluo Oct 4, 2019
3c40b7a
Refactor: user_realm_discovery() memorizes domains not supporting URD
rayluo Oct 4, 2019
7b2afc0
B2C implementation
rayluo Oct 4, 2019
7aceb91
Wire up acquire_token_silent(..., force_refresh=...)
rayluo Oct 10, 2019
5b5e8de
get_authorization_request_url(...) API refactoring
rayluo Oct 10, 2019
152b12c
Customizable response_type, useful in B2C
rayluo Sep 30, 2019
7d5468a
Use Microsoft Graph rather than AAD Graph as default scope
rayluo Oct 14, 2019
d31d472
Better support for B2C sovereign clouds
rayluo Oct 15, 2019
eb80b95
Enable Python 3.8 in test automation
rayluo Oct 15, 2019
d640457
Merge pull request #107 from AzureAD/python38
rayluo Oct 15, 2019
8e83dd6
Merge pull request #105 from AzureAD/customizable-response_type
rayluo Oct 15, 2019
1719e7e
Merge pull request #104 from AzureAD/b2c
rayluo Oct 15, 2019
47614bd
Merge pull request #91 from AzureAD/device-flow-for-msa-accounts
rayluo Oct 16, 2019
f387d41
MSAL 0.8.0
rayluo Oct 18, 2019
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Prev Previous commit
Next Next commit
Better support for B2C sovereign clouds 
Based on the way we implemented it,
the previous implementation would still work, in a sense that the app
dev would be guided to bypass the Instance Discovery.
This commit merely adds a shortcut so that app dev would not have to
explicitly toggle validate_authority=False.
  • Loading branch information
@rayluo
rayluo committed Oct 15, 2019
commit d31d4722a50d771dd0533b37d0255ee281c98ffb
9 changes: 7 additions & 2 deletions msal/authority.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -18,7 +18,12 @@
'login.microsoftonline.us',
'login.microsoftonline.de',
])

WELL_KNOWN_B2C_HOSTS = [
"b2clogin.com",
"b2clogin.cn",
"b2clogin.us",
"b2clogin.de",
]

class Authority(object):
"""This class represents an (already-validated) authority.
Expand All @@ -43,7 +48,7 @@ def __init__(self, authority_url, validate_authority=True,
self.proxies = proxies
self.timeout = timeout
authority, self.instance, tenant = canonicalize(authority_url)
is_b2c = self.instance.endswith(".b2clogin.com")
is_b2c = any(self.instance.endswith("." + d) for d in WELL_KNOWN_B2C_HOSTS)
if (tenant != "adfs" and (not is_b2c) and validate_authority
and self.instance not in WELL_KNOWN_AUTHORITY_HOSTS):
payload = instance_discovery(
Expand Down